$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft File: 5vEsD995brDfK2AuWsQsy4OyLhg.mft (raw, json) Hash identifier: N8vCVG8L6lJRruJd9TqCvgOiG2ch2TANPyVQW7dDnhI= Subject key identifier: 81:E1:43:CE:1D:61:7E:08:B6:34:6D:C2:07:28:3E:72:30:D8:B8:6E Authority key identifier: E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 Certificate issuer: /CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Certificate serial: 33C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft Manifest number: 33BF Signing time: Sat 18 May 2024 15:21:55 +0000 Manifest this update: Sat 18 May 2024 15:21:54 +0000 Manifest next update: Sat 25 May 2024 15:21:54 +0000 Files and hashes: 1: 5vEsD995brDfK2AuWsQsy4OyLhg.crl (hash: Ok70PtLfNFy9TCedzE+Fh5pZSd2L9EhHnoJcgzScmhw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13250 (0x33c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Validity Not Before: May 18 15:21:54 2024 GMT Not After : May 25 15:21:54 2024 GMT Subject: CN=6648c792-1ca8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:35:c8:de:a5:5a:55:8d:77:0e:0d:37:4e:46: f6:af:3a:c9:07:0b:bd:83:5a:55:e6:77:c1:20:e2: 4a:b0:45:ce:b8:8d:48:e3:ca:26:28:83:13:76:cd: 51:6f:24:03:10:80:eb:ca:21:a5:12:ba:ad:b4:75: a6:cc:be:d1:78:6d:51:88:65:c2:df:b2:8e:5f:36: f2:3e:75:77:7d:a5:59:02:a4:d3:b7:f3:1d:bf:52: eb:90:d0:8b:f9:e5:86:33:95:a5:87:b7:af:b4:f7: 84:d5:4a:8d:de:1a:95:77:89:92:31:ca:8d:4a:48: 35:46:4a:c0:5e:87:f6:ee:39:a0:b0:22:fd:c6:2c: d8:5b:65:8e:37:6f:be:38:2c:0d:d2:02:15:b7:49: 62:7c:4a:9c:bf:89:4d:d7:5e:ad:5f:51:aa:61:05: d5:a1:d5:a6:c9:02:19:95:fa:d1:07:b9:1f:46:fe: f8:53:f8:ab:73:aa:79:9a:8b:de:83:fa:93:76:b0: 1c:27:a8:c5:d5:fd:b5:69:79:ed:9e:57:13:36:35: 58:c3:e3:1a:64:cb:33:a9:67:1c:aa:73:95:61:8a: d0:f1:c0:37:7f:5c:1e:b0:60:d3:95:df:2b:a9:ad: fd:ee:6a:99:3e:f3:37:57:40:67:49:c1:a9:4b:ea: c5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:E1:43:CE:1D:61:7E:08:B6:34:6D:C2:07:28:3E:72:30:D8:B8:6E X509v3 Authority Key Identifier: keyid:E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:29:5c:49:9e:6a:4d:16:a9:df:d6:e5:af:67:bc:ff:19:36: 8f:57:80:b1:57:c5:80:f2:13:8c:81:af:b2:72:be:75:ac:a0: ca:34:05:88:f8:db:f1:9e:dc:fc:59:5b:ec:2d:66:2b:f5:cf: c2:a9:14:f0:99:03:0d:38:3a:96:2d:fc:e5:f6:ad:0d:5e:97: 0e:cb:27:b5:78:4f:d6:18:08:c5:1a:19:84:6d:cb:cd:4f:ce: 9a:19:62:dd:70:00:84:db:f1:46:5d:16:f2:b9:92:c4:d6:8a: e0:35:c5:1b:33:69:9a:0e:59:d5:e3:c0:4d:ce:c1:4e:4e:84: 08:43:a3:c8:1d:d9:24:dd:eb:88:e3:bb:3a:66:80:12:16:51: 62:96:4f:5b:eb:f9:fc:84:83:7d:52:a6:13:65:7c:bf:b0:11: 2d:8f:34:8e:a5:cd:17:ee:6a:a7:6c:28:06:b1:5e:3b:ac:f9: 2c:08:f6:26:00:b2:41:fe:eb:44:b1:9a:0a:7a:2d:ee:d5:74: 5c:d1:a7:a4:58:1a:37:3a:61:17:76:6c:15:8b:c4:85:93:ae: 95:4a:c6:26:e4:96:75:8a:58:4c:f9:22:9c:b2:06:1a:df:3c: d9:f8:68:85:e9:51:ff:01:c5:c8:fb:f4:42:af:a6:4a:70:d6: f1:65:ce:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzQjcxMTAvBgNVBAUTKEU2RjEyQzBGREY3OTZFQjBERjJCNjAyRTVBQzQyQ0NC ODNCMjJFMTgwHhcNMjQwNTE4MTUyMTU0WhcNMjQwNTI1MTUyMTU0WjAYMRYwFAYD VQQDEw02NjQ4Yzc5Mi0xY2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzXI3qVaVY13Dg03Tkb2rzrJBwu9g1pV5nfBIOJKsEXOuI1I48omKIMTds1R byQDEIDryiGlErqttHWmzL7ReG1RiGXC37KOXzbyPnV3faVZAqTTt/Mdv1LrkNCL +eWGM5Wlh7evtPeE1UqN3hqVd4mSMcqNSkg1RkrAXof27jmgsCL9xizYW2WON2++ OCwN0gIVt0lifEqcv4lN116tX1GqYQXVodWmyQIZlfrRB7kfRv74U/irc6p5move g/qTdrAcJ6jF1f21aXntnlcTNjVYw+MaZMszqWccqnOVYYrQ8cA3f1wesGDTld8r qa397mqZPvM3V0BnScGpS+rFqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHhQ84d YX4ItjRtwgcoPnIw2LhuMB8GA1UdIwQYMBaAFObxLA/feW6w3ytgLlrELMuDsi4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNCNy85RkFFODRGQTFE QTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJyRGZLMkF1V3NRc3k0T3lM aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2RXNEOTk1YnJEZksyQXVXc1FzeTRPeUxoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNCNy85RkFFODRGQTFEQTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJy RGZLMkF1V3NRc3k0T3lMaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiKVxJnmpNFqnf1uWvZ7z/GTaPV4CxV8WA8hOMga+ycr51rKDKNAWI +Nvxntz8WVvsLWYr9c/CqRTwmQMNODqWLfzl9q0NXpcOyye1eE/WGAjFGhmEbcvN T86aGWLdcACE2/FGXRbyuZLE1orgNcUbM2maDlnV48BNzsFOToQIQ6PIHdkk3euI 47s6ZoASFlFilk9b6/n8hIN9UqYTZXy/sBEtjzSOpc0X7mqnbCgGsV47rPksCPYm ALJB/utEsZoKei3u1XRc0aekWBo3OmEXdmwVi8SFk66VSsYm5JZ1ilhM+SKcsgYa 3zzZ+GiF6VH/AcXI+/RCr6ZKcNbxZc5S -----END CERTIFICATE-----Generated at Sat May 18 15:58:22 2024 by rpki-client on console-ams.rpki-client.org